Routing/Forwarding into LAN (Docker compose, Portforwarding)

Traefik Traefik v2
1

Hi,

i hope you can help me. I think i have an easy usecase.

Situation at the moment:
Router with Portforwarding e.g. Port 80(TCP) to an internal LAN Webserver and an other port to a nextcloud serverinstance at the same raspberry as traefik

Usecase:
i don't want to use the Portforwarding in the router. I want to use Traefik to route the packages into the LAN to the Webserver and the nexcloud instance at the same raspberry. Traefik should run in a docker container on a raspberry.

What i have done:

Router: Portforwarding to 777,888 and 444 to the raspberry.

docker-compose.yml

version: '3'

services:
  reverse-proxy:
    # The official v2 Traefik docker image
    image: traefik:v2.9

    ports:
      - "888:80"
      - "444:443"
      - "777:8080"

    volumes:
      - /var/run/docker.sock:/var/run/docker.sock #So that Traefik can listen to the Docker events
      - ./traefik.yml:/etc/traefik/traefik.yml

traefik.yml

api:
  dashboard: true
  insecure: true

log:
  level: DEBUG

providers:
  file:
    filename: "/etc/traefik/traefik.yml"

entryPoints:
  web:
    address: ":80"
  websecure:
    address: ":443"

http:
  routers:
    #Diskstation LAN
    router_diskstation:
      entryPoints:
        - websecure
      service: service-diskstation
      rule: "Host(`mydomain.com`) && Path(`/diskstation`)"
#      tls:
#        certResolver: myresolver

    #Nextcloud - Raspberry (Apache)
    router_nextcloud:
      entryPoints:
        - websecure
      service: service-nextcloud
      rule: "Host(`mydomain.com`) && Path(`/nextcloud`)"
 #     tls:
 #       certResolver: myresolver


######Services######
  services:
    #Service Diskstation
    service-diskstation:
      loadBalancer:
        servers:
          - url: "https://192.168.0.50:5000"

    #Service Nextcloud
    service-nextcloud:
      loadBalancer:
        servers:
          - url: "https://192.168.0.200/nextcloud"

		  
## Let's encrypt configuration
#certificatesResolvers:
#  myresolver:
#    acme:
#      email: email@example.net
#      storage: acme.json
#      httpChallenge:
#        # used during the challenge
#        entryPoint: web

Unfortunately at the moment 404 page not found is always displayed.

The dashboard on port 777 shows me the routers, middleware and services.

But as I said, unfortunately there is no connection.

I think there is only a small failure in the config, but i don't find it.

If the routing is running, than i want to enable SSL certificates.

Thanks in advance
CK1

2

Here sombody has the same problem.

unfortunately there is no answer.

65b1c09269313c5a6195f26ad687513b61c3c1fd
65b1c09269313c5a6195f26ad687513b61c3c1fd1438×680 13.4 KB

3

For your internal services you use - url: https://. Are you sure that works? Where is the diskstation getting a valid TLS certificate from?

4

For your internal services you use - url: https:// . Are you sure that works? Where is the diskstation getting a valid TLS certificate from?

At the moment the local servers has a SSL certificate, because at the moment there are ports forwarded to the servers. The SSL certificate is domainbased (mydomain.com) not for the local IP address.

Do you think i should change to http for the local connection from Traefik to the Diskstation and Nextcloud?